libnss-ldapd is too old and broken in hardy, please ship 0.6.2
Bug #236142 reported by
Rich
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
nss-ldapd (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
The version of libnss-ldapd, as far as I can tell from reading all the libnss-ldapd bug reports (including the one I filed), is known to be broken in almost every use case.
This is unacceptable for an LTS. Please ship 0.6.2. I just had to install the Intrepid package on the systems I administer to avoid a libnss-ldap bug, and it's unacceptable that a broken package is shipped in an LTS.
To post a comment you must log in.
I'm the main developer of nss-ldapd as well as the Debian package maintainer and I think 0.5 is good for testing but not yet ready for production use. A number of major and minor bugs were fixed in later releases, some of the fixes were done by some restructuring of the code.
All in all from 0.5 to 0.6.2 there are almost 200 commits in SVN affecting in total roughtly 2000 lines of code (exclusing test code, documentation, comments, etc). Backporting the relevant changes will not be easy (though if the price is right, I might be willing to try). ;-)
As for the stability of 0.6.2, it has received a lot more testing than 0.5 and most of the memory leaks and crashes have been worked out (although you should also watch which version of the OpenLDAP library you are using). There could always be hidden bugs and there is a known problem with reconnects that should be done better (see the Debian BTS for more details). I feel 0.6.2 should work well in most environments.